Vulnerabilities > CVE-2010-4530 - Numeric Errors vulnerability in Muscle Pcsc-Lite 1.5.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Signedness error in ccid_serial.c in libccid in the USB Chip/Smart Card Interface Devices (CCID) driver, as used in pcscd in PCSC-Lite 1.5.3 and possibly other products, allows physically proximate attackers to execute arbitrary code via a smart card with a crafted serial number that causes a negative value to be used in a memcpy operation, which triggers a buffer overflow. NOTE: some sources refer to this issue as an integer overflow.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Nessus
NASL family Fedora Local Security Checks NASL id FEDORA_2011-0162.NASL description This update fixes the following security issue : An integer overflow, leading to array index error was found in the way USB CCID (Chip/Smart Card Interface Devices) driver processed certain values of card serial number. A local attacker could use this flaw to execute arbitrary code, with the privileges of the user running the pcscd daemon, via a malicious smart card with specially crafted value of its serial number, inserted to the system USB port. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 51517 published 2011-01-14 reporter This script is Copyright (C) 2011-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/51517 title Fedora 14 : ccid-1.4.0-2.fc14 (2011-0162) NASL family Oracle Linux Local Security Checks NASL id ORACLELINUX_ELSA-2013-1323.NASL description From Red Hat Security Advisory 2013:1323 : An updated ccid package that fixes one security issue and one bug is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Chip/Smart Card Interface Devices (CCID) is a USB smart card reader standard followed by most modern smart card readers. The ccid package provides a Generic, USB-based CCID driver for readers, which follow this standard. An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-06-01 modified 2020-06-02 plugin id 70285 published 2013-10-03 reporter This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/70285 title Oracle Linux 5 : ccid (ELSA-2013-1323) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201401-16.NASL description The remote host is affected by the vulnerability described in GLSA-201401-16 (CCID: Arbitrary code execution) CCID contains an integer overflow vulnerability in ccid_serial.c. Impact : A physically proximate attacker could execute arbitrary code via a smart card with a specially crafted serial number. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 72071 published 2014-01-22 reporter This script is Copyright (C) 2014-2015 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/72071 title GLSA-201401-16 : CCID: Arbitrary code execution NASL family SuSE Local Security Checks NASL id SUSE_11_PCSC-CCID-110121.NASL description An integer overflow in pcsc-ccid and a buffer overflow in pcsc-lite while handling smart card responses have been fixed. CVE-2010-4530 / CVE-2010-4531 have been assigned to these issues. Additionally a new device ID for card readers was added. last seen 2020-06-01 modified 2020-06-02 plugin id 51844 published 2011-02-02 reporter This script is Copyright (C) 2011-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/51844 title SuSE 11.1 Security Update : pcsc-lite (SAT Patch Number 3889) NASL family CentOS Local Security Checks NASL id CENTOS_RHSA-2013-1323.NASL description An updated ccid package that fixes one security issue and one bug is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Chip/Smart Card Interface Devices (CCID) is a USB smart card reader standard followed by most modern smart card readers. The ccid package provides a Generic, USB-based CCID driver for readers, which follow this standard. An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-06-01 modified 2020-06-02 plugin id 79152 published 2014-11-12 reporter This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/79152 title CentOS 5 : ccid (CESA-2013:1323) NASL family Oracle Linux Local Security Checks NASL id ORACLELINUX_ELSA-2013-0523.NASL description From Red Hat Security Advisory 2013:0523 : An updated ccid package that fixes one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Chip/Smart Card Interface Devices (CCID) is a USB smart card reader standard followed by most modern smart card readers. The ccid package provides a Generic, USB-based CCID driver for readers, which follow this standard. An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-06-01 modified 2020-06-02 plugin id 68759 published 2013-07-12 reporter This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/68759 title Oracle Linux 6 : ccid (ELSA-2013-0523) NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2013-0523.NASL description An updated ccid package that fixes one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Chip/Smart Card Interface Devices (CCID) is a USB smart card reader standard followed by most modern smart card readers. The ccid package provides a Generic, USB-based CCID driver for readers, which follow this standard. An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-06-01 modified 2020-06-02 plugin id 64770 published 2013-02-21 reporter This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/64770 title RHEL 6 : ccid (RHSA-2013:0523) NASL family Scientific Linux Local Security Checks NASL id SL_20130221_CCID_ON_SL6_X.NASL description An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-03-18 modified 2013-03-05 plugin id 65008 published 2013-03-05 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/65008 title Scientific Linux Security Update : ccid on SL6.x i386/x86_64 (20130221) NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2013-1323.NASL description An updated ccid package that fixes one security issue and one bug is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Chip/Smart Card Interface Devices (CCID) is a USB smart card reader standard followed by most modern smart card readers. The ccid package provides a Generic, USB-based CCID driver for readers, which follow this standard. An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-04-16 modified 2013-10-01 plugin id 70247 published 2013-10-01 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/70247 title RHEL 5 : ccid (RHSA-2013:1323) NASL family Scientific Linux Local Security Checks NASL id SL_20130930_CCID_ON_SL5_X.NASL description An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-03-18 modified 2013-10-11 plugin id 70388 published 2013-10-11 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/70388 title Scientific Linux Security Update : ccid on SL5.x i386/x86_64 (20130930) NASL family CentOS Local Security Checks NASL id CENTOS_RHSA-2013-0523.NASL description An updated ccid package that fixes one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Chip/Smart Card Interface Devices (CCID) is a USB smart card reader standard followed by most modern smart card readers. The ccid package provides a Generic, USB-based CCID driver for readers, which follow this standard. An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card last seen 2020-06-01 modified 2020-06-02 plugin id 65154 published 2013-03-10 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/65154 title CentOS 6 : ccid (CESA-2013:0523) NASL family SuSE Local Security Checks NASL id SUSE_11_2_LIBPCSCLITE1-110105.NASL description An integer overflow in pcsc-ccid and a buffer overflow in pcsc-lite while handling smart card responses have been fixed. CVE-2010-4530 and CVE-2010-4531 have been assigned to these issues. last seen 2020-06-01 modified 2020-06-02 plugin id 53754 published 2011-05-05 reporter This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/53754 title openSUSE Security Update : libpcsclite1 (openSUSE-SU-2011:0092-1) NASL family Fedora Local Security Checks NASL id FEDORA_2011-0143.NASL description This update fixes the following security issue : An integer overflow, leading to array index error was found in the way USB CCID (Chip/Smart Card Interface Devices) driver processed certain values of card serial number. A local attacker could use this flaw to execute arbitrary code, with the privileges of the user running the pcscd daemon, via a malicious smart card with specially crafted value of its serial number, inserted to the system USB port. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 51516 published 2011-01-14 reporter This script is Copyright (C) 2011-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/51516 title Fedora 13 : ccid-1.3.11-2.fc13 (2011-0143) NASL family SuSE Local Security Checks NASL id SUSE_11_3_LIBPCSCLITE1-110105.NASL description An integer overflow in pcsc-ccid and a buffer overflow in pcsc-lite while handling smart card responses have been fixed. CVE-2010-4530 and CVE-2010-4531 have been assigned to these issues. last seen 2020-06-01 modified 2020-06-02 plugin id 75602 published 2014-06-13 reporter This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/75602 title openSUSE Security Update : libpcsclite1 (openSUSE-SU-2011:0092-1)
Redhat
advisories |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
rpms |
|
References
- http://www.vupen.com/english/advisories/2011/0100
- http://labs.mwrinfosecurity.com/files/Advisories/mwri_pcsc-libccid-buffer-overflow_2010-12-13.pdf
- http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053097.html
- http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053076.html
- https://bugzilla.redhat.com/show_bug.cgi?id=664986
- http://www.openwall.com/lists/oss-security/2011/01/03/3
- http://www.openwall.com/lists/oss-security/2010/12/22/7
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:014
- http://www.securityfocus.com/bid/45806
- http://www.vupen.com/english/advisories/2011/0179
- http://rhn.redhat.com/errata/RHSA-2013-1323.html
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64961